Security at AddToQuote
Enterprise-grade security to protect your business data and customer information.
End-to-End Encryption
All data is encrypted using TLS 1.2+ in transit and AES-256 at rest.
SOC 2 Type II Compliant
Our infrastructure meets rigorous security, availability, and confidentiality standards.
Access Controls
Role-based access controls and multi-factor authentication for all admin access.
Regular Security Audits
Third-party penetration testing and vulnerability assessments conducted quarterly.
Data Protection
We implement multiple layers of security to protect your data:
Encryption Standards
- TLS 1.2+ - All data in transit is encrypted
- AES-256 - All data at rest is encrypted
- Shopify OAuth - Secure authentication with Shopify
Infrastructure Security
Our infrastructure is hosted on enterprise-grade cloud providers with:
- Geographic redundancy across multiple availability zones
- Automated backups with point-in-time recovery
- DDoS protection and web application firewall
- 24/7 infrastructure monitoring and alerting
Compliance
AddToQuote maintains compliance with industry standards:
- SOC 2 Type II - Security, availability, and confidentiality controls
- GDPR - European data protection compliance
- CCPA - California consumer privacy compliance
- Shopify App Requirements - All Shopify security standards
Vulnerability Management
We maintain a proactive approach to security:
- Quarterly third-party penetration testing
- Automated vulnerability scanning
- Bug bounty program for responsible disclosure
- Regular security training for all team members
Report a Security Issue
If you discover a security vulnerability, please report it to security@addtoquote.com. We take all reports seriously and will respond within 24 hours.
Contact
For security-related questions or concerns:
- Security Team: security@addtoquote.com
- General Support: support@addtoquote.com